[pptp-server] W98 client can only ping poptop server

Brian Aust BAust at healthdec.com
Wed Jun 21 17:52:06 CDT 2000


No... no ipchains, yet....

I have a CHeckpoint FW-1 firewall on an NT box, and the poptop server is
10.1.1.69, NAT'd to a real external address.  So the poptop server is just
another internal server here at the company.  But FW-1 has it NAT'd to a
real external IP, and i've set up a rule in FW-1 to allow ANY AND ALL
traffic in to and out from the poptop server.

Does this shed any new light onto things?

Brian R. Aust
Manager of Information Technology
Health Decisions, Inc.
1512 East Franklin St.  Suite 200
Chapel Hill, NC   27514
919.967.2399 x247
baust at healthdec.com


> -----Original Message-----
> From: Scott M. Stone [mailto:sstone at taos.com]
> Sent: Wednesday, June 21, 2000 6:51 PM
> To: Brian Aust
> Cc: 'pptp-server at lists.schulte.org'
> Subject: Re: [pptp-server] W98 client can only ping poptop server
> 
> 
> On Wed, 21 Jun 2000, Brian Aust wrote:
> 
> > Hey guys...
> > 
> > After finally trashing all of my W98SE dial up networking 
> software and
> > reinstalling all of it from CD and then applying the 
> 128-bit DUN upgrade,
> > the W98 now successfully connects to my Linux Poptop server 
> without errors.
> > Bear in mind this is just clear, no authentication.
> > 
> > However...  it comes close, but not quite.  Turns out that 
> it can ONLY ping
> > the internal address of the Poptop server (10.1.1.69), and 
> nothing else.
> > There are lots of other machines on our 10.x.x.x network, 
> but the W98 box
> > can't ping them.  it can't ping 10.1.1.2 (DNS and WINS 
> server) or anything.
> 
> you're using ipchains, right?
> 
> you have to specifically allow conduits from your pptp client 
> ip addrs to
> the rest of your subnet, since you're spanning multiple interfaces.
> 
> > 
> > Here's the layout again:
> > 
> > Server:  RHAT6.2, PPTPD 1.0.0 tarball install             
> Client:  W98SE
> > with 128-bit DUN upgrade...   only TCP/IP selected, gets 
> all addresses from
> > server
> > 
> > /etc/ppp/options file:
> > lock
> > ms-dns 10.1.1.2
> > ms-wins 10.1.1.2
> > domain healthdec.com
> > proxyarp
> > name bnyatalie.healthdec.com
> > debug
> > auth
> > require-chap 
> > 
> > /etc/ppp/chap-secrets file:
> > baust     *               bpass               *		
> (I've also put the
> > name of the poptop server in place of the "*"s in the 2nd 
> area, in the past)
> > jdoe       *               jpass                *
> > 
> > /etc/pptpd.conf file:
> > speed 115200
> > debug
> > localip 10.1.1.69    #this is the address of the poptop server
> > remoteip 10.1.1.96-99	#the four addresses i have set 
> aside for W98 clients
> > 
> > 
> > and finally, the /var/log/messages file when the W98 box connects:
> > Jun 21 01:58:39 bnyatalie pptpd[10016]: CTRL: Client 
> 24.162.230.141 control
> > connection started
> > Jun 21 01:58:39 bnyatalie pptpd[10016]: CTRL: Starting call 
> (launching pppd,
> > opening GRE)
> > Jun 21 01:58:39 bnyatalie pppd[10017]: pppd 2.3.11 started 
> by root, uid 0
> > Jun 21 01:58:39 bnyatalie pppd[10017]: Using interface ppp0
> > Jun 21 01:58:39 bnyatalie pppd[10017]: Connect: ppp0 <--> /dev/pts/2
> > Jun 21 01:58:39 bnyatalie pppd[10017]: CHAP peer 
> authentication succeeded
> > for baust
> > Jun 21 01:58:40 bnyatalie pppd[10017]: found interface eth0 
> for proxy arp
> > Jun 21 01:58:40 bnyatalie pppd[10017]: local  IP address 10.1.1.69
> > Jun 21 01:58:40 bnyatalie pppd[10017]: remote IP address 10.1.1.97
> > Jun 21 01:58:40 bnyatalie pppd[10017]: CCP terminated by peer
> > Jun 21 01:58:40 bnyatalie pppd[10017]: Compression disabled by peer.
> > Jun 21 02:01:35 bnyatalie pppd[10017]: LCP terminated by peer
> > Jun 21 02:01:36 bnyatalie pptpd[10016]: CTRL: Error with 
> select(), quitting
> > Jun 21 02:01:36 bnyatalie pptpd[10016]: CTRL: Client 
> 24.162.230.141 control
> > connection finished
> > Jun 21 02:01:36 bnyatalie pppd[10017]: Modem hangup
> > Jun 21 02:01:36 bnyatalie pppd[10017]: Connection terminated.
> > Jun 21 02:01:36 bnyatalie pppd[10017]: Connect time 3.0 minutes.
> > Jun 21 02:01:36 bnyatalie pppd[10017]: Sent 1114 bytes, 
> received 18023
> > bytes.
> > Jun 21 02:01:36 bnyatalie pppd[10017]: Exit.             
> > 
> > everything at 01:58 is when it first connects, the stuff at 
> 02:01 is when i
> > finally killed the dialup networking connection from W98.
> > 
> > Any clues why the W98 box can ping the poptop server, but 
> nothing else on
> > the internal network??
> > 
> > Thanks much!!
> > Brian
> > 
> > Brian R. Aust
> > Manager of Information Technology
> > Health Decisions, Inc.
> > 1512 East Franklin St.  Suite 200
> > Chapel Hill, NC   27514
> > 919.967.2399 x247
> > baust at healthdec.com
> > 
> > _______________________________________________
> > pptp-server maillist  -  pptp-server at lists.schulte.org
> > http://lists.schulte.org/mailman/listinfo/pptp-server
> > List services provided by www.schulteconsulting.com!
> > 
> > 
> 
> --------------------------
> Scott M. Stone, CCNA <sstone at taos.com>
> UNIX Systems and Network Engineer
> Taos - The SysAdmin Company 
> 



More information about the pptp-server mailing list